
WHAT WE CLAIM IS: 



1. An electronic certification method for 
delegating actions of a titleholder having an 
electronic certificate stored in a titleholder 
terminal to a delegate having a -iSaflPir. e^e^j^^^Sc 
c@^6B$$§Me in a ag0i1ppT.e l|ggnlli<lil , said 

certificate of said titleholder and said first 

of said deelseagoike further including 



J 
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N certificate 

respective pub lic k eys and certificate signatures of 

■ " ( c pN ; — 

respective certification^ authorities, said method 

comprising the following steps after solicitation of 

delegation to said delegate by said titleholder: 

^^fflfcln said delegate terminal, drawing up a 

recertif ication request and transmitting said 

recertif ication request to said titleholder 

terminal, 

- in said titleholder terminal, drawing up a 
second electronic delegate certificate in ^response 
to said recertif ication requestj and^/transmitting 
said second certificate , to said delegate terminal, 
said second certificate including data such as said 



public key of said titleholder, j^said public key of 
said delegate and a delegation attribute7~~~^and a 
signature of said data with a private key of said 
titleholder^? and 



.n said delegate terminal, validating said 
signature in said second delegate certificate 
transmitted in order for said delegate terminal to 
use said second certificate for any action delegated 
by said titleholder to said delegate. 
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2. The method claimed in claim 1, wherein said 
data in said second delegate certificate includes a 
delegation duration . 

3. The method claimed in claim l f wherein j>aid 
data in said second delegate certificate includes 
information relating to revocation of said second 
certificate . 

4. The method claimed in claim 1, wherein said 
titleholder certificate is included in said data of 
said second delegate certificate. 

5. The method claimed in claim 1, wherein an 
attribute representing authorization of . said 
titleholder to delegate is included in said 
titleholder certificate . 

6. The method claimed in claim 1, including 
^ determination of a signature of sai-d public key of 

said delegate in said delegate terminal as a 
function of a private key of said delegate, said ^ 

9^ delegate public key and ^said signature being 
introduced into said recertif ication request, and 

~C) validation of said signature extracted from the 
received recertif ication request as a function of 
said delegate public key by said titleholder 
terminal/'^ before drawing up jsaid second delegate 
certificate . 



/ 



22 



2 



7. The method claimed in claim 1, including 
generation of second delegate public and private 
keys in said delegate terminal, said second public 
key being included in saicJ recertif ication request 
and then introduced into said delegate second 
certificate by said titleholder terminal in place of 
§aid respective public key of said delegate. 

8. The method claimed in claim 1, including 
generation of said private key of sai d titleholder 
in said titleholder terminal, in place of drawing up 
and transmitting saixi recertif ication request, in 
order to establish said signature of said data by 
means of t sai d private key and transmit said private 
key of said titleholder substantially in parallel 
with said electronic second delegate certificate to 
s_aid^delegate terminal . 

9. The method claimed in claim 1, wherein said 
second delegate certificate is stored on a storage 
medium removable from said delegate terminal. 
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